From Michael.Paoli at cal.berkeley.edu Fri May 11 08:38:20 2018
From: Michael.Paoli at cal.berkeley.edu (Michael Paoli)
Date: Fri, 11 May 2018 08:38:20 -0700
Subject: BALUG: meeting TUESDAY!: 2018-05-15 (Security ...); 2018-06-19:
DC/OS; & other BALUG News
Message-ID: <20180511083820.121713bnzfvo2u40@webmail.rawbw.com>
BALUG: meeting TUESDAY!: 2018-05-15 (Security ...); 2018-06-19: DC/OS;
& other BALUG News
------------------------------
items, details further below:
BALUG meeting TUESDAY!: Tu 2018-05-15 (Security ...)
BALUG meeting 2018-06-19: Elizabeth K. Joseph: DC/OS
giveaways (Books/publications, CDs/DVDs, ...)
help BALUG! :-) - volunteering, venue, ...
Twitter https://twitter.com/#!/BALUG_org
------------------------------
BALUG meeting TUESDAY!: Tu 2018-05-15 (Security ...)
This month, for our 2018-05-15 (3rd Tuesday) BALUG meeting:
We don't have a formal presentation lined up for this meeting, but we
do have a suggested discussion topic: Security ... And more
specifically - we have at least one relative expert and a more specific
area of Security. Most notably: Security for developers from a Linux
sysadmin perspective. Notably:
o On security, most of developers' focus is often on their code itself,
and with little attention to the broader scope/context
o Security for sysadmins is a topic often rather well covered by
sysadmins (and others) for sysadmins
o Developers (and software architects, etc.) often can greatly improve
security by learning from the perspective of sysadmins, e.g.:
o Least Privilege Principle[1] and Defense in Depth[2], notably
including use of:
o users, groups, permissions
o Set Group ID (SGID) - including directories
o Set User ID (SUID)
o sudo(8) and secure use thereof (specifying, etc.)
o Sticky Bit - notably on directories
o chroot, BSD "jail", containers/Docker, etc.
o ssh-keys: authorized_keys and restricting commands, source IPs, etc.
o Kerberos[3]
o passwords, salts[4], hashes[5], pepper[6]
o various authentication means - less secure and more so
o encryption; secure data storage
o trust relationships
o data validation
o code review, security review, pair programming
o scanning, testing, top vulnerabilities in/from developer realm
o etc.
1. https://en.wikipedia.org/wiki/Principle_of_least_privilege
2. https://en.wikipedia.org/wiki/Defence_in_depth
3. https://en.wikipedia.org/wiki/Kerberos_(protocol)
4. https://en.wikipedia.org/wiki/Salt_(cryptography)
5. https://en.wikipedia.org/wiki/Cryptographic_hash_function
6. https://en.wikipedia.org/wiki/Pepper_(cryptography)
Please RSVP to rsvp at balug.org if you're planning to attend,
and also note our revised RSVP policy further below.
Meeting kicks off at 6:30 P.M. - we start with meet and greet and chat
and such, then proceed with dining around 7:00 P.M. for dinner - please
arrive before 7:00 P.M. if you want to join us for dinner.
RSVP
Please RSVP if you're planning to attend. To do so please
e-mail us a note to rsvp at balug.org
indicating meeting date. If you'll be bringing additional guest(s)
please let us know total number of folks you're RSVPing for.
Also please let us know any special requirements or concerns you may
have (e.g. if you have any particular dietary considerations, so that
we might possibly be able to accommodate you, or if you won't be dining
with us but do wish to otherwise join our meeting).
6:30pm Tuesday, May 15th, 2018 2018-05-15
Henry's Hunan Restaurant
110 Natoma St. (between 2nd & New Montgomery)
San Francisco, CA 94105-3704
1-415-546-4999
http://henryshunan.com/
Easy Transit/Parking Access: short walk from BART, MUNI, parking
Trip planning: http://www.511.org/
Delicious Hunan cuisine and reasonably priced.
Meeting Details...
Cost/Dining:
The meetings are always free, but dinner is not (unless you are our
guest speaker, in which case we also treat you to dinner). For
Henry's Hunan Restaurant, if folks are agreeable, we'll share and
dine "family" style, and split up the costs, and typical cost per
person including tax and tip (but not including beverages beyond
complementary tea) would be in the $13.00 to $20.00 range, and
commonly around $15.00 to $17.00. Cash may be preferred to ease
splitting up the check. One can also specifically order the
dish(es) one needs/prefers (e.g. for dietary considerations) - and
we also commonly order some dish(es) that may meet various dietary
considerations) (e.g. vegetarian, non-pork, ...). Please arrive by
7:00 P.M., we expect to order entrees at that time, and may order
appetizer(s) and/or soup(s) anytime after 6:30 P.M.
------------------------------
BALUG meeting 2018-06-19: Elizabeth K. Joseph: DC/OS
For our 2018-06-19 meeting we are proud to present:
Elizabeth K. Joseph[1]: DC/OS (the datacenter operating system)[2]
Elizabeth K. Joseph joins us to give an introduction to DC/OS.
Tooling around container orchestration has gained a lot of attention
recently with various open source tools promising to deliver the
framework to manage a highly available container infrastructure. This
talk will explore DC/OS (the datacenter operating system) an
open-source, distributed operating system based on the
Apache Mesos[3] distributed systems kernel. DC/OS manages multiple
machines in the cloud or on-premises from a single interface; deploys
containers, distributed services, and legacy applications into those
machines; and provides networking, service discovery and resource
management to keep the services running and communicating with each other.
A demo using real streaming will also be given to show how DC/OS can
easily use various popular open source big data tools to process data
coming in and present it to the user.
Bio: Elizabeth K. Joseph spent much of the past decade working as a
Linux systems administrator, and today works as a Developer Advocate at
Mesosphere[4]. She is the author of Common OpenStack Deployments[5]
and The Official Ubuntu Book[6].
1. https://princessleia.com/
2. https://en.wikipedia.org/wiki/Datacenter_Operating_System
3. http://mesos.apache.org/
4. https://mesosphere.com/
5.
https://www.pearson.com/us/higher-education/program/Joseph-Common-Open-Stack-Deployments-Real-World-Examples-for-Systems-Administrators-and-Engineers/PGM132354.html
6. http://www.informit.com/store/official-ubuntu-book-9780134513423
------------------------------
We typically have various giveaway items at BALUG meetings. We'll
likely have at least the below plus additional items.
CDs/DVDs/ISOs, etc. - have a look here:
https://www.wiki.balug.org/wiki/doku.php?id=balug:cds_and_images_etc
Donations of blank or +-RW media, USB flash, or funding thereof,
also appreciated. See the above URL for details (and the inventory
(qty.) of what we specifically have "burned" and available on-hand does
also frequently change).
Books and other titles!
have a peek here:
https://www.wiki.balug.org/wiki/doku.php?id=balug:books_and_publications
------------------------------
help BALUG! :-) - volunteering, venue ...
You can do useful and cool stuff volunteering to help BALUG.
Quite a variety of opportunities to help BALUG. Come talk to us at a
meeting and/or drop us a note at: balug-contact at balug.org
These opportunities may include, among other possibilities:
o venue arrangement (e.g. followup on potential leads,
on-site coordination/preparations)
o assist on speaker coordination/procurement, etc.
o chief/assistant cat herder
o assist on publicity
o Linux Systems Administration (e.g. do/assist/learn, with/under some
quite experienced and skilled Linux systems administrator(s)).
o webmaster, assistant webmaster, designer, graphic artist
o archivist/history/retrieval/etc.
o and other various/miscellaneous tasks BALUG would like to be doing
(also feel free to suggest ideas!)
------------------------------
Twitter - you can also follow BALUG on Twitter:
https://twitter.com/#!/BALUG_org
------------------------------
Feedback on our publicity/announcements (e.g. contacts or lists where we
should get our information out that we're not presently reaching, or
things we should do differently): publicity-feedback at balug.org